Standards are like Rules…Made to be Broken
Standards are the preferred; however, as we all know, not everything fits into the same box.  How does your company handle the exception to the standard? Let’s say your company has a password standard of 8 characters, to include at least one lower case, one capital letter, one number, and ... Read More
Information Security Leader…where do you live?
Where does the leader of your information security function fit into the corporate structure?  Whether you have a Chief Information Security Officer, the function is handled by your Chief Information Officer (CIO), or this function falls to a Director in the IT organization, does the function have the proper authority ... Read More
Another Star for Texas
 Another week, another breach…and I didn’t have to spend a week on vacation to read about this one.  Off we go to the Lone Star State where yes, everything is bigger in Texas…3.5 million.  That is a lot of records to be involved in a single data breach.  If one ... Read More
Data Breaches—Where are you?
I spent a few days in New York City on a vacation (and with only going online three times in five days) and started reviewing some on my favorite blogs and websites to see what happened in the information security world during my hiatus. Low and behold, we have had ... Read More
Security Education…Removing the dread
We can all admit that security education isn’t ever going to at the top of the user’s super-happy-fun time list, but we can make it a little less painful. And maybe, just maybe, they will find it useful and tolerable. However, before you send out or conduct your next training, ... Read More
One Stop Shopping — Health Care and Credit Monitoring
For the 2nd time in less that 2 years, Health Net has lost a copy of the medical records of their customers (Infoweek.com article). This time it is nearly 2 million records. In 2009, they were fined and ordered to pay for 2 years of credit monitoring (must have been about time to renew the ... Read More
Posting Your Life on Social Networking Sites
I have always considered myself somewhat of a logical thinker when it comes to what should be posted on social networking sites. To clarify...I have a facebook page but I haven't posted anything to it; I only created the page so that I could monitor what my kids, nieces, nephews, friends kids, etc ... Read More
Post #1
Why Skeeter Spray?  Information Security issues, problems, and /or incidents (whatever you call them in your company) can be like those pesky little bugs.  There are many ways to deal with them:1. You can fog the whole yard and know that you will kill some.  Just as you can send out ... Read More
